"Through this incident I've learned people should instead contact their home insurance company and get an approved list of vendors to choose from."<p>I don't agree with this. Never contact your insurance company unless you plan on filing a claim, just asking for this list is equivalent to a claim.<p>If you have a valid claim, your insurance can't force you to use a list of vendors. You can choose any vendor you want to. The vendors work/cost must be appropriate.
This can be a sleazy industry. Servpro is the big corporate side, but the New York Times reported a few years ago about actual criminal intimidation in the industry (<a href="https://www.nytimes.com/2023/08/03/nyregion/fire-truck-chasers-gangs-nyc.html" rel="nofollow">https://www.nytimes.com/2023/08/03/nyregion/fire-truck-chase...</a>)
So if I understand this correctly, this company gets certain information about 911 calls, and then sells it to third parties?<p>I wonder how much information they get, because this could get a lot darker. Imagine if calls to the police reporting domestic violence resulted in advertising material from divorce lawyers. (A domestic violence victim might well want a divorce lawyer, but unsolicited material showing up in their mailbox may put them at risk by enraging their already-violent spouse.)
I highly doubt Matt Haughey is correct about pulsepoint being the source of this information. The source was almost certainly services that scan the public radio broadcast of emergency communications. As a first correction, pulsepoint isn’t a company. It is a nonprofit. Obviously nonprofits can sell data, but it is clear Haughey didn’t go very deep in his research to get such a basic item wrong.
It seems like it would be very, very easy to make these Servpro salespeople unreasonably busy undertaking sales calls that do not have a worthwhile rate of return.
> That's a sleazy business model but it's not illegal<p>I feel bad for folks who live in countries without a GDPR equivalent.<p>The ICO's guidance says "You can rely on legitimate interests for marketing activities if you can show that how you use people’s data is proportionate, has a minimal privacy impact, and <i>people would not be surprised or likely to object</i>"<p>I refuse to believe people would not be surprised or likely to object to this sort of marketing. It's creepy and invasive, and preying on people who may have lost their possessions or the house they've lived in for decades. I would be completely outraged if I received a visit of this nature after making a call to the _emergency services_. That's completely insane!<p>Without being able to rely on legitimate interests, there would not be an opportunity for data to be legally shared and processed in this way. None of the other lawful bases would apply, in my view.
“ 911 calls are mostly public information since they involve public services who all need to communicate with one another.” Umm not in Europe. First of all Tetra/Dimetra calls are E2E encrypted (with some famous vulnerabilities) then there’s privacy laws etc.
It’s surprising that in the US where you have the right to protect your home and privacy even with lethal means, the same measures don’t extend cybernetically.
Thank you for sharing. I particularly enjoyed the call out where you highlight what you learned from the incident. Took the post from fear-brain to information-brain for me (don't mind my curiosity haha).<p>I had a much less intrusive incident but equally "alarming" ;). The apartment I live in has hard wired smoke/carbon monoxide alarms (with backup battery). One night, ~2am 1 of them starts beeping that the battery is dead. I confirm the breaker didn't flip or anything...finally decided to complete disassemble it and get some sleep. 4 of these in the apartment. Head hits the pillow and a second one goes off! Take all 4 down and live dangerously for an evening.<p>In the morning I do my research - turns out these things just start doing that after 10 years. "Get a new one!" it peeps incessantly.<p>Shame me please - as I bought replacements. I'll save this post for myself in 10 years so at least I can be the one to say "I told you so".
ServPro is actually one of the less bad ones. BELFOR are even pushier, and take advantage of the fact that building owners and building renters tend to have different priorities in fire cases to gain unlawful access to damaged units. I had Belfor people in my smoke-damaged home without my knowledge constantly, and they made off with a bit of valuable stuff during that unsupervised time. I was renting back then, and of course my say meant nothing to these people.<p>Very scummy industry overall, everyone we interacted with in the wake of that fire left a bad taste in our mouths. ServPro was the original company on the job before Belfor somehow took the contract from em, and they were at least professional and understanding of the awful circumstance people were in.
If my heater goes out, while its below freezing outside, and a salesman offering to fix it shows up at my door two hours later, whether or not its sleezy/ethically wrong is entirely dependent on how much they're charging for their services. I understand the angle that it could be interpreted as exploiting someone in a tough spot, but that's a no-more-valid interpretation than helping someone out of a dire, potentially life-threatening situation; it just comes down to how much they're charging.<p>The angle that they're finding clients by ambulance chasing public 911 records is interesting, but ethically neutral.
It is repugnant that this is able to happen at all. To the extent that the government contracts with a third party, the legal requirements should be none of the data is shared without a warrant.
Something similar happened to me. A piece of cardboard packing material fell in to the furnace when they were installing it, and it just sat on top of the heat exchanger slowly carbonizing until one day it decided to start smoking. The firefighters spotted the source right away with an IR camera and extinguished it with a shot of CO2, then the furnace guy came and got it out.
This sorta thing could happen without the API integration, police radio calls happen on the public radio waves, anyone can listen and go to the address too. If the police encrypt their radio, they usually rebroadcast with a delay, in the interest of transparency, so it’s still possible.
Servpro charged me $35,000 for work they never completed, then did $30,000 of damage to my house, then threatened to sue me<p>Never, ever under any circumstances
I happened to be seated behind some people on an aircraft who were in the business of doing these sales pitches and discussing it without shame. But in their case, they were targeting people who called the police regarding property crime, and then trying to sell them alarm systems.<p>Nothing they said was illegal, but it felt immoral and like they were taking advantage of people in vulnerable situations. Although I feel like we aren't meant to discuss morality when there is money to be made, if it is capitalism and business, then anything and everything is fair game -- even this.
This reminds me of the recent "service" that somehow front-runs police reports and tries to sell them to car accident victims who are motivated to get their insurance claim going.<p>That said, I don't think the API is to blame here. You could accomplish the same thing by listening to the FD on a scanner and converting the voice to text.
I recently got my car totaled by a distracted driver. Somehow, within the week, I had 4 different law firms cold-call me and ask if I needed representation. Some were more unscrupulous than others, but I got pretty livid that something or someone shared my information with them.<p>Even worse, after I bought a new vehicle I've received 4+ "extended warranty" junk mail letters that look very official. It comes off as very predatory and leaves a generally bad taste in my mouth with how bad data protections are.